Few actions ('iam:passrole', 'lambda:createfunction', 'lambda:invokefunc*'), will increase the probability of privilege escalation.
In AWS Console -
In Terraform -
References:
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy